
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/ae8c35-f9d7-437b-8996-32a4278e5bc5/1/lwhyRZO0dTF1shSBLPaJGmRfhMU.mft
File: lwhyRZO0dTF1shSBLPaJGmRfhMU.mft (raw, json)
Hash identifier: x1KJgC9XLb/UrOwpndkgOgM3OMbr7Ll9J4Q72R7pMjY=
Subject key identifier: E6:7B:DC:BD:A4:5B:85:AA:7F:AD:CB:A3:FB:E0:49:BC:AC:C6:CE:EA
Authority key identifier: 97:08:72:45:93:B4:75:31:75:B2:14:81:2C:F6:89:1A:64:5F:84:C5
Certificate issuer: /CN=9708724593b4753175b214812cf6891a645f84c5
Certificate serial: 0196846C75CD9C98B5877047F5402F57D1D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lwhyRZO0dTF1shSBLPaJGmRfhMU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/ae8c35-f9d7-437b-8996-32a4278e5bc5/1/lwhyRZO0dTF1shSBLPaJGmRfhMU.mft
Manifest number: 3A
Signing time: Wed 30 Apr 2025 02:00:22 +0000
Manifest this update: Wed 30 Apr 2025 02:00:22 +0000
Manifest next update: Thu 01 May 2025 02:00:22 +0000
Files and hashes: 1: ANb8R9j2-02RgxidkX6we3ysGQE.roa (hash: PtyNaJPud8TrVLKjYWqb06NjCoREWDEBCKKVezOGEGI=)
2: lwhyRZO0dTF1shSBLPaJGmRfhMU.crl (hash: wZg6fq8oVozUXzWViH/FolF1recWbhhGYwS3QKsjRfs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/ae8c35-f9d7-437b-8996-32a4278e5bc5/1/lwhyRZO0dTF1shSBLPaJGmRfhMU.crl
rsync://rpki.ripe.net/repository/DEFAULT/99/ae8c35-f9d7-437b-8996-32a4278e5bc5/1/lwhyRZO0dTF1shSBLPaJGmRfhMU.mft
rsync://rpki.ripe.net/repository/DEFAULT/lwhyRZO0dTF1shSBLPaJGmRfhMU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:84:6c:75:cd:9c:98:b5:87:70:47:f5:40:2f:57:d1:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9708724593b4753175b214812cf6891a645f84c5
Validity
Not Before: Apr 30 02:00:22 2025 GMT
Not After : May 1 02:00:22 2025 GMT
Subject: CN=e67bdcbda45b85aa7fadcba3fbe049bcacc6ceea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:90:9a:bf:90:ba:4b:db:17:6b:9d:e5:56:1b:
64:bb:4d:3f:c2:a3:60:e1:93:a6:e8:d2:15:73:a3:
17:c4:aa:ee:0e:91:50:c1:57:c2:57:19:99:48:6e:
d0:bb:10:17:3d:41:2d:ed:ec:12:10:3f:1a:3a:7d:
bd:7d:4a:89:76:1e:35:54:d8:40:75:bc:ea:50:46:
72:cf:50:eb:79:a1:fd:c1:9c:bf:db:4b:b4:6b:3e:
be:15:8c:72:59:b5:95:1b:b5:40:65:92:d2:40:db:
9a:25:33:56:b1:ce:27:85:d5:7a:03:de:0e:fa:d3:
b4:1a:df:ef:8d:2a:c4:0b:9e:d2:7e:ce:f8:e1:27:
36:f1:53:bd:54:98:cb:c8:00:80:8a:57:eb:ac:91:
40:46:c2:b9:df:78:af:b7:ac:ab:f6:54:db:28:47:
b2:e5:59:4e:7e:7e:80:d4:97:da:72:53:af:8f:2b:
f5:29:b1:bc:75:6f:47:b1:5f:c9:22:d5:65:0e:24:
60:18:84:f6:fb:dc:f6:62:1a:58:fd:c7:94:e3:f1:
bd:18:8d:ae:11:79:b7:00:94:f7:71:11:06:35:cd:
15:83:db:fe:7b:db:08:b3:dd:26:28:08:47:e9:fd:
ff:b8:24:6b:88:fe:d3:67:b6:44:c2:a9:c7:62:19:
cc:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:7B:DC:BD:A4:5B:85:AA:7F:AD:CB:A3:FB:E0:49:BC:AC:C6:CE:EA
X509v3 Authority Key Identifier:
keyid:97:08:72:45:93:B4:75:31:75:B2:14:81:2C:F6:89:1A:64:5F:84:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lwhyRZO0dTF1shSBLPaJGmRfhMU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/ae8c35-f9d7-437b-8996-32a4278e5bc5/1/lwhyRZO0dTF1shSBLPaJGmRfhMU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/ae8c35-f9d7-437b-8996-32a4278e5bc5/1/lwhyRZO0dTF1shSBLPaJGmRfhMU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:2e:ba:cc:21:1e:30:00:9b:02:56:92:3f:5e:5a:72:a4:fd:
94:34:58:80:f9:70:a6:78:05:ca:4a:70:49:ad:6a:9f:5f:26:
f3:a0:2d:29:77:a4:d7:1e:64:e0:24:e5:21:e4:98:46:86:65:
fd:ee:65:42:15:5c:6e:3a:d5:e7:a9:ce:fe:2a:10:83:01:e5:
c5:49:60:5e:91:4a:84:92:dc:b7:a5:a4:a0:17:bc:40:f6:7f:
9b:eb:5a:2a:f0:53:c8:4d:36:87:4b:29:e6:a8:be:25:0e:fc:
6d:55:71:34:f9:80:7d:79:01:93:53:70:cb:07:b6:b6:8d:42:
73:4b:a5:14:fa:2e:b5:fe:6e:54:ae:0b:24:48:55:8a:b9:88:
06:1d:d4:ce:ad:7c:88:7e:f1:fb:f2:79:66:ee:3c:0f:58:8f:
08:ab:a5:8c:20:16:a9:23:e6:3f:d4:64:ea:a1:b8:49:fa:4a:
aa:d5:2a:9e:96:04:e2:e9:84:9b:f8:53:ed:ba:58:fe:b8:3f:
62:23:40:bb:57:5a:f5:67:52:17:f3:63:65:de:06:f3:1b:03:
15:03:b7:cf:92:45:73:10:93:4b:46:5b:76:80:67:52:de:97:
b7:75:5b:20:17:d8:b5:bf:48:4b:b2:77:51:ef:3b:fa:53:69:
f8:dd:d8:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 10:42:57 2025 by rpki-client